Searching certificate software vulnerabilities

The command port for PGP Certificate Server 2.5

Certificate | command | Server | port | PGP |

The command port for PGP Certificate Server 2.5.0 and 2.5.1 allows remote attackers to cause a denial of service if their hostname does not have a reverse DNS entry and they connect to port 4000.


Netscape (iPlanet) Certificate Management Syste

Netscape |

Netscape (iPlanet) Certificate Management System 4.2 and Directory Server 4.12 stores the administrative password in plaintext, which could allow local and possibly remote attackers to gain administrative privileges on the server.


Cross-site scripting (CSS) vulnerability in Val

Cross-site | scripting |

Cross-site scripting (CSS) vulnerability in ValiCert Enterprise Validation Authority (EVA) 3.3 through 4.2.1 allows remote attackers to execute arbitrary code or display false information by including HTML or script in the certificate's description, which is executed when the certificate is viewed.


CMG WAP gateway does not verify the fully quali

man-in-the-middle | certificates | authorities | certificate | qualified | attackers | gateway | allows | remote | verify | attack | domain | spoof | fully | which | name | does | X509 | root | via | CMG | SSL | URL | WAP | not |

CMG WAP gateway does not verify the fully qualified domain name URL with X.509 certificates from root certificate authorities, which allows remote attackers to spoof SSL certificates via a man-in-the-middle attack.


Openwave WAP gateway does not verify the fully

man-in-the-middle | certificates | certificate | authorities | attackers | qualified | Openwave | gateway | remote | allows | verify | domain | attack | which | spoof | fully | name | does | X509 | root | via | not | URL | WAP | SSL |

Openwave WAP gateway does not verify the fully qualified domain name URL with X.509 certificates from root certificate authorities, which allows remote attackers to spoof SSL certificates via a man-in-the-middle attack.


Microsoft Internet Explorer 6.0, when handling

man-in-the-middle | certificate | webserver's | handshake | searching | attackers | Microsoft | handling | Explorer | Internet | perform | expired | CA-CERT | SSL/TLS | finding | before | during | attack | prompt | chain | allow | newer | which | does | user | not | may |

Microsoft Internet Explorer 6.0, when handling an expired CA-CERT in a webserver's certificate chain during a SSL/TLS handshake, does not prompt the user before searching for and finding a newer certificate, which may allow attackers to perform a man-in-the-middle attack. NOTE: it is not clear whether this poses a vulnerability.


Integer overflow in OpenSSL 0.9.6 and 0.9.7 all

overflow | OpenSSL | Integer |

Integer overflow in OpenSSL 0.9.6 and 0.9.7 allows remote attackers to cause a denial of service (crash) via an SSL client certificate with certain ASN.1 tag values.


Double-free vulnerability in OpenSSL 0.9.7 allo

vulnerability | Double-free | OpenSSL |

Double-free vulnerability in OpenSSL 0.9.7 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an SSL client certificate with a certain invalid ASN.1 encoding.


OpenCA before 0.9.1.4 does not use the correct

before | OpenCA |

OpenCA before 0.9.1.4 does not use the correct certificate in a chain to check the serial, which could cause OpenCA to accept revoked or expired certificates.


The KAME IKE Daemon Racoon, when authenticating

man-in-the-middle | authenticating | authentication | unauthorized | connections | certificate | establish | signature | attackers | validates | conduct | attacks | trusted | allows | Racoon | during | Daemon | verify | remote | valid | Phase | which | using | KAME | peer | does | X509 | but | IKE | RSA | not |

The KAME IKE Daemon Racoon, when authenticating a peer during Phase 1, validates the X.509 certificate but does not verify the RSA signature authentication, which allows remote attackers to establish unauthorized IP connections or conduct man-in-the-middle attacks using a valid, trusted X.509 certificate.


Mozilla 1.5 through 1.7 allows a CA certificate

certificate | malicious | attackers | built-in | imported | because | Mozilla | service | invalid | treated | through | denial | allows | remote | pages | which | their | cause | even | same | root | SSL |

Mozilla 1.5 through 1.7 allows a CA certificate to be imported even when their DN is the same as that of the built-in CA root certificate, which allows remote attackers to cause a denial of service to SSL pages because the malicious certificate is treated as invalid.


ServerAdmin in Mac OS X 10.2.8 through 10.3.5 u

ServerAdmin | Mac |

ServerAdmin in Mac OS X 10.2.8 through 10.3.5 uses the same example self-signed certificate on each system, which allows remote attackers to decrypt sessions.


Buffer overflow in the ssl_prcert function in t

ssl_prcert | function | overflow | filter | SSLway | Buffer |

Buffer overflow in the ssl_prcert function in the SSLway filter (sslway.c) for DeleGate 8.9.2 and earlier allows remote attackers to execute arbitrary code via a certificate with a long (1) subject or (2) issuer name field.


Java Secure Socket Extension (JSSE) 1.0.3 throu

Extension | Socket | Secure | Java |

Java Secure Socket Extension (JSSE) 1.0.3 through 1.0.3_2 does not properly validate the certificate chain of a client or server, which allows remote attackers to falsely authenticate peers for SSL/TLS.


X.509 Certificate Signature Verification in Gnu

Verification | Certificate | transport | Signature | security | library | layer | X509 | Gnu |

X.509 Certificate Signature Verification in Gnu transport layer security library (GnuTLS) 1.0.16 allows remote attackers to cause a denial of service (CPU consumption) via certificates containing long chains and signed with large RSA keys.


Linksys WRT54G router uses the same private key

information | certificate | connection | sensitive | attackers | private | Linksys | remote | allows | router | WRT54G | obtain | sniff | every | which | same | uses | SSL | key |

Linksys WRT54G router uses the same private key and certificate for every router, which allows remote attackers to sniff the SSL connection and obtain sensitive information.


Unspecified vulnerability in yaSSL before 1.0.6

vulnerability | Unspecified | before | yaSSL |

Unspecified vulnerability in yaSSL before 1.0.6 has unknown impact and attack vectors, related to "certificate chain processing."


The Online Certificate Status Protocol (OCSP) s

Certificate | Protocol | Status | Online |

The Online Certificate Status Protocol (OCSP) service in the Security Framework in Apple Mac OS X 10.4 through 10.4.8 retrieve certificate revocation lists (CRL) when an HTTP proxy is in use, which could cause the system to accept certificates that have been revoked.


Microsoft Internet Explorer 7 allows remote att

certificate | attackers | Microsoft | security | Explorer | Internet | invalid | appear | secure | allows | remote | cause | link | site | web | via |

Microsoft Internet Explorer 7 allows remote attackers to cause a security certificate from a secure web site to appear invalid via a link to res://ieframe.dll/invalidcert.htm with the target site as an argument, which displays the site's URL in the address bar but causes Internet Explorer to report that the certificate is invalid.


Check Point FireWall-1 allows remote attackers

certificate | FireWall-1 | revocation | attackers | obtain | allows | remote | lists | Check | Point |

Check Point FireWall-1 allows remote attackers to obtain certificate revocation lists (CRLs) and other unspecified sensitive information via an HTTP request for the top-level URI on the internal certificate authority (ICA) port (18264/tcp).


Software vulnerabilities results 1 to 20 of 66     
Page: 1234